$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa File: 3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa (raw, json) Hash identifier: jSjRAgcVxXEFSpQkNfBkeuinXTt7J0DoP/WXpR5y2NU= Subject key identifier: 30:F3:E8:CF:95:A2:98:3D:9C:5E:78:CA:3F:17:2D:E5:7E:91:44:1D Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 3D3E32BABDB04FB9D0E6A7A15AC8A28F9151342C Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa Signing time: Mon 01 Jul 2024 01:05:42 +0000 ROA not before: Mon 01 Jul 2024 01:00:42 +0000 ROA not after: Mon 30 Jun 2025 01:05:42 +0000 asID: 135478 IP address blocks: 175.158.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3e:32:ba:bd:b0:4f:b9:d0:e6:a7:a1:5a:c8:a2:8f:91:51:34:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 1 01:00:42 2024 GMT Not After : Jun 30 01:05:42 2025 GMT Subject: CN=30F3E8CF95A2983D9C5E78CA3F172DE57E91441D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b3:ff:d0:4a:6a:96:3d:e9:2f:63:de:2e:d0: 01:46:78:6f:e1:e3:6f:cc:c3:47:ab:06:eb:9c:fb: 1e:db:e4:85:b4:82:f1:04:65:11:bd:ce:ac:cb:0e: 53:76:e1:74:c8:e6:b4:7f:ce:2c:33:70:c7:b6:ca: 7a:ff:f6:7b:a1:da:1c:1a:79:1f:8a:25:6f:f3:8e: ae:a7:c3:30:2d:19:f9:10:ea:b1:7f:4d:38:99:a1: 4b:2d:c1:76:ad:a9:47:43:2b:7b:1d:07:d8:76:ec: 19:fe:c4:27:a7:8c:ee:ad:58:79:60:47:e2:5f:21: 48:73:c2:91:ef:5a:6c:fb:ef:8c:d4:6d:63:8f:c3: 0f:1b:cb:3a:28:51:4e:04:24:f8:00:81:63:52:70: 11:23:0b:30:06:ac:49:e0:4d:6c:22:1f:54:20:8b: af:f7:7f:35:ff:2b:b1:ed:0d:c7:e2:88:0e:10:21: b1:de:fb:cd:88:19:a3:19:e9:41:be:7d:39:ac:3b: a5:9d:32:e0:33:97:2c:01:87:63:4b:ef:ba:35:57: 6c:90:59:82:5c:ca:48:0d:c1:ad:fd:30:c0:67:10: 97:f9:c8:03:98:e6:06:cc:08:91:0c:85:42:a2:96: e8:3b:69:94:de:51:f9:49:f8:ef:c8:ca:9c:6d:1e: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F3:E8:CF:95:A2:98:3D:9C:5E:78:CA:3F:17:2D:E5:7E:91:44:1D X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.48.0/20 Signature Algorithm: sha256WithRSAEncryption bc:f0:c1:c4:a1:98:81:49:ad:db:eb:3a:16:c3:02:fc:c8:45: f6:c4:43:40:83:97:32:73:c3:fd:91:62:23:00:a6:83:3b:50: dc:ad:16:f8:22:9c:8e:b3:e4:72:28:55:dc:3b:5e:eb:3d:77: ac:ad:41:33:e0:f3:f5:1b:d0:2c:51:b6:7b:4e:e6:6c:78:2f: 36:74:9a:a1:da:a9:3e:f3:83:38:6c:35:06:2c:a6:78:e8:37: d5:cf:de:7d:16:2a:a9:cd:64:d3:8d:d9:44:41:5f:3e:a8:cb: 00:6c:8f:d5:c8:78:fd:fc:63:99:2c:fd:37:cc:3f:66:59:fa: 69:08:00:74:84:c2:e9:85:b2:dd:3c:91:82:ba:e8:6f:23:c1: 4c:a3:7c:bc:9e:11:7a:14:b4:98:c0:38:eb:44:e3:17:82:75: 85:de:66:5e:c0:e5:ce:f5:fa:49:07:75:87:05:30:87:c3:ee: 72:5e:9c:87:25:96:6a:9d:7d:65:75:13:36:07:8e:3c:e5:8c: 1d:72:dc:2b:bf:d4:26:ad:6b:62:30:a7:40:d9:42:23:73:70: 9d:e7:3b:19:26:88:39:fc:f2:bb:7b:a5:b0:e9:ad:a8:6e:31: d8:8b:eb:c9:e3:24:5e:6e:9d:ec:97:86:b7:be:17:84:7e:e2: 1e:a2:b6:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPT4yur2wT7nQ5qehWsiij5FRNCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA3MDEwMTAwNDJaFw0yNTA2MzAwMTA1NDJaMDMxMTAvBgNV BAMTKDMwRjNFOENGOTVBMjk4M0Q5QzVFNzhDQTNGMTcyREU1N0U5MTQ0MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLs//QSmqWPekvY94u0AFGeG/h 42/Mw0erBuuc+x7b5IW0gvEEZRG9zqzLDlN24XTI5rR/ziwzcMe2ynr/9nuh2hwa eR+KJW/zjq6nwzAtGfkQ6rF/TTiZoUstwXatqUdDK3sdB9h27Bn+xCenjO6tWHlg R+JfIUhzwpHvWmz774zUbWOPww8byzooUU4EJPgAgWNScBEjCzAGrEngTWwiH1Qg i6/3fzX/K7HtDcfiiA4QIbHe+82IGaMZ6UG+fTmsO6WdMuAzlywBh2NL77o1V2yQ WYJcykgNwa39MMBnEJf5yAOY5gbMCJEMhUKilug7aZTeUflJ+O/IypxtHhZ3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMPPoz5WimD2cXnjKPxct5X6RRB0wHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEr54wMA0GCSqG SIb3DQEBCwUAA4IBAQC88MHEoZiBSa3b6zoWwwL8yEX2xENAg5cyc8P9kWIjAKaD O1DcrRb4IpyOs+RyKFXcO17rPXesrUEz4PP1G9AsUbZ7TuZseC82dJqh2qk+84M4 bDUGLKZ46DfVz959FiqpzWTTjdlEQV8+qMsAbI/VyHj9/GOZLP03zD9mWfppCAB0 hMLphbLdPJGCuuhvI8FMo3y8nhF6FLSYwDjrROMXgnWF3mZewOXO9fpJB3WHBTCH w+5yXpyHJZZqnX1ldRM2B4485Ywdctwrv9QmrWtiMKdA2UIjc3Cd5zsZJog5/PK7 e6Ww6a2objHYi+vJ4yRebp3sl4a3vheEfuIeorZ1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org